Contents

--- 
gem: activesupport
framework: rails
cve: 2013-0333
osvdb: 89594
url: http://osvdb.org/show/osvdb/89594
title:
  Ruby on Rails JSON Parser Crafted Payload YAML Subset Decoding Remote Code
  Execution 
date: 2013-01-28

description: |
  Ruby on Rails contains a flaw in the JSON parser. Rails supports multiple
  parsing backends, one of which involves transforming JSON into YAML via the
  YAML parser. With a specially crafted payload, an attacker can subvert the
  backend into decoding a subset of YAML. This may allow a remote attacker to
  bypass restrictions, allowing them to bypass authentication systems, inject
  arbitrary SQL, inject and execute arbitrary code, or perform a DoS attack on
  a Rails application.

cvss_v2: 9.3

patched_versions: 
  - ~> 2.3.16
  - ">= 3.0.20"

Version data entries

14 entries across 14 versions & 3 rubygems

Version	Path
bundler-budit-0.6.2	data/ruby-advisory-db/gems/activesupport/OSVDB-89594.yml
bundler-budit-0.6.1	data/ruby-advisory-db/gems/activesupport/OSVDB-89594.yml
bundler-audit-0.6.1	data/ruby-advisory-db/gems/activesupport/OSVDB-89594.yml
bundler-audit-0.6.0	data/ruby-advisory-db/gems/activesupport/OSVDB-89594.yml
bundler-audit-0.5.0	data/ruby-advisory-db/gems/activesupport/OSVDB-89594.yml
bundler-audit-0.4.0	data/ruby-advisory-db/gems/activesupport/OSVDB-89594.yml
bundler-audit-0.3.1	data/ruby-advisory-db/gems/activesupport/OSVDB-89594.yml
mrjoy-bundler-audit-0.3.3	data/ruby-advisory-db/gems/activesupport/OSVDB-89594.yml
mrjoy-bundler-audit-0.3.2	data/ruby-advisory-db/gems/activesupport/OSVDB-89594.yml
mrjoy-bundler-audit-0.3.1	data/ruby-advisory-db/gems/activesupport/OSVDB-89594.yml
bundler-audit-0.3.0	data/ruby-advisory-db/gems/activesupport/OSVDB-89594.yml
mrjoy-bundler-audit-0.2.1	data/ruby-advisory-db/gems/activesupport/OSVDB-89594.yml
bundler-audit-0.2.0	data/ruby-advisory-db/gems/activesupport/OSVDB-89594.yml
mrjoy-bundler-audit-0.1.4	data/ruby-advisory-db/gems/activesupport/OSVDB-89594.yml